An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
102/172
)
CCIs
Number
Definition
Status
Related
CCI-003061
Communicate subsequent changes to the plans to organization-defined personnel or roles.
Draft
PL-2
CCI-003062
Defines the personnel or roles to whom changes to the plans are communicated.
Draft
PL-2
CCI-003063
Protect the plans from unauthorized disclosure.
Draft
PL-2
CCI-003064
Protect the plans from unauthorized modification.
Draft
PL-2
CCI-003065
The organization plans and coordinates security-related activities affecting the information system with organization-defined individuals or groups before conducting such activities in order to reduce the impact on other organizational entities.
Draft
PL-2(3)
CCI-003066
The organization defines the individuals or groups with whom security-related activities are planned and coordinated.
Deprecated
PL-2(3)
CCI-003067
The organization defines the individuals or groups with whom security-related activities are planned and coordinated.
Draft
PL-2(3)
CCI-003068
Review and update the rules of behavior in accordance with organization-defined frequency.
Draft
PL-4
CCI-003069
Defines the frequency with which to review and update the rules of behavior.
Draft
PL-4
CCI-003070
Require individuals who have acknowledged a previous version of the rules of behavior to read and re-acknowledge, on an organization-defined frequency, and/or when the rules of behavior are revised or updated.
Draft
PL-4
CCI-003071
Develop a security Concept of Operations (CONOPS) for the system describing how the organization intends to operate the system from the perspective of information security.
Draft
PL-7
CCI-003072
Develop security architectures for the system.
Draft
PL-8
CCI-003073
Develop security architectures for the system that describes the requirements and approach to be taken for protecting the confidentiality, integrity, and availability of organizational information.
Draft
PL-8
CCI-003074
Develop security architectures for the system that describe how the architectures are integrated into and support the enterprise architecture.
Draft
PL-8
CCI-003075
Develop security architectures for the system that describe any assumptions about, and dependencies on, external systems and services.
Draft
PL-8
CCI-003076
Review and update the architectures in accordance with organization-defined frequency to reflect updates in the enterprise architecture.
Draft
PL-8
CCI-003077
Defines the frequency with which to review and update the system architecture.
Draft
PL-8
CCI-003078
Reflect planned security architecture changes in the security plans.
Draft
PL-8
CCI-003079
Reflect planned security architecture changes in the security Concept of Operations (CONOPS).
Draft
PL-8
CCI-003080
Reflect planned security architecture changes in the security organizational procurements and acquisitions.
Draft
PL-8
CCI-003081
Design the security architecture for the system using a defense-in-depth approach that allocates organization-defined controls to organization-defined locations.
Draft
PL-8(1)
CCI-003082
Design the security architecture for the system using a defense-in-depth approach that allocates organization-defined controls to organization-defined architectural layers.
Draft
PL-8(1)
CCI-003083
Defines the controls to be allocated to organization-defined locations for the security architecture.
Draft
PL-8(1)
CCI-003084
Defines the controls to be allocated to organization-defined architectural layers.
Draft
PL-8(1)
CCI-003085
Defines the locations to which the system allocates organization-defined controls in the security architecture.
Draft
PL-8(1)
CCI-003086
Defines the architectural layers to which the system allocates organization-defined controls in the security architecture.
Draft
PL-8(1)
CCI-003087
Design the security architecture for the system using a defense-in-depth approach that ensures that the allocated controls operate in a coordinated and mutually reinforcing manner.
Draft
PL-8(1)
CCI-003088
Require that organization-defined controls allocated to organization-defined locations and architectural layers be obtained from different suppliers.
Draft
PL-8(2)
CCI-003089
Defines the personnel or roles to whom the organization-level; mission/business process-level; and/or system-level system and services acquisition policy is disseminated.
Draft
SA-1
CCI-003090
Defines the personnel or roles to whom procedures to facilitate the implementation of the system and services acquisition policy and associated system and services acquisition controls are disseminated.
Draft
SA-1
Prev
1...
98
99
100
101
102
103
104
105
106
...172
Next